Director, Enterprise Identity and Access Management

• Develops and implements a forward-thinking IAM strategy that aligns with the university’s technological and cybersecurity goals. Drives the adoption of modern IAM principles such as Zero Trust and identity decentralization to secure access across hybrid and multi-cloud environments. Leads the university’s IAM program to maturity across CISA’s Zero Trust pillars (i.e., identity, device, network, application, data). Maintains professional currency. Advocates for innovative solutions. Participates in industry forums, conferences, and professional publications. Serves as an advisor to senior leadership on IAM trends and innovations, threat mitigation strategies related to access control, and ensuring alignment with institutional goals.  

• Leads the deployment of advanced IAM technologies (e.g., AI-driven access controls, adaptive authentication solutions,) while ensuring seamless integration with cloud-native, mobile, IoT, and multi-cloud platforms. Ensures IAM systems enable digital transformation initiatives, secure collaboration with external partners, and support academic, research, and administrative resource access.  

• Oversees the lifecycle of digital identities (e.g., provisioning, de-provisioning, role-based access control) for joiners, movers, leavers (JML) and non-human identities across systems, ensuring accurate and secure access management. Develops metrics and dashboards to monitor IAM performance, assess program effectiveness, and implement continuous improvement initiatives.  

• Develops and enforces IAM policies that comply with regulatory standards (e.g., FERPA, HIPAA, GDPR). Conducts risk assessments and establishes incident response protocols for IAM-related vulnerabilities.  

• Partners with academic and operational units to identify IAM needs, deliver tailored solutions, and represent the university on internal and external committees. Leads and mentors IAM professionals. Oversees workforce planning. 

• Ensures the recruitment, training, and professional development of staff. Manages the IAM budget. Oversees vendor relationships, contracts, and SLAs to deliver high-quality IAM solutions.  

• Accountable for all aspects of staff management,(e.g., hiring, coaching, training, performance reviews, pay actions, and promotions within the Enterprise Identity and Access Management organization). Provides technical leadership and mentorship to ensure a high-performing Enterprise Identity and Access Management team. 

• Encourages a workplace culture where all employees are valued, value others and have the opportunity to contribute through their ideas, words and actions, in accordance with the USC Code of Ethics.

MINIMUM QUALIFICATIONS

Greatcandidates for the position of Director, Enterprise Identity and Access Managementwill meet the following qualifications:

• 10 years in Identity and Access Management

• Bachelor’s degree in information science or cyber securityor in related field(s) with combinedexperience/education as substitute for minimum education

• Proven track record of developing and implementing IAM strategies aligned with Zero Trust and modern identity principles.

• Expertise in advanced IAM technologies (e.g., AI-driven access controls, adaptive authentication, and seamless integration with multi-cloud and hybrid environments).

• Demonstrated experience implementing Zero Trust IAM strategies and advanced access governance.

• Strong understanding of regulatory standards and the ability to enforce compliant IAM policies.

• Experience in managing the full lifecycle of digital identities (e.g., provisioning, de-provisioning, role-based access control).

• Demonstrated success in building metrics and dashboards for assessing IAM performance and program effectiveness.

• Possesses excellent leadership and mentorship skills.

• Financial acumen.

• Demonstrated strong collaboration skills.

• A CISSP, GIAC, CISM, etc.

PREFERRED QUALIFICATIONS

Exceptional candidates for the position of Director, Enterprise Identity and Access Managementwill also bring the following qualifications or more:

• Master’s degree in information science or cyber securityor related field(s).

• Experience in higher education, research computing or healthcare environments.

• Familiarity with non-human identity (NHI) management and secrets lifecycle tools (e.g., HashiCorp, Astrix).

• Knowledge of ITDR platforms and integration with SOC/SIEM tooling.

• Relevant cybersecurity certifications, such as CISSP, CISM, or similar.

In addition, the successful candidate must also demonstrate, through ideas, words and actions, a strong commitment to USC’s Unifying Values of integrity, excellence, community, well-being, open communication, and accountability.

SALARY AND BENEFITS